On Wednesday, December 17, we held the webinar “Role and Risk Management in S/4HANA Cloud Public Edition”, delivered by José González, SAP Manager at Inprosec, in which we explored how to design and maintain an efficient and secure access model aligned with SAP best practices for S/4HANA Cloud Public Edition environments.
The event was delivered in two sessions, one in the morning and one in the afternoon, to facilitate attendance from different regions.
During the webinar, we addressed the main challenges related to identity management, role design, and Segregation of Duties (SoD) risks in S/4HANA Cloud Public Edition, an environment with significant differences compared to traditional SAP On-Premise or Private Cloud systems.
Key topics covered
- Introduction to S/4HANA Cloud Public Edition
We reviewed the key characteristics of the Public Cloud model, its differences compared to On-Premise and Private Edition, and the implications in terms of security, customization, and access governance. - Role model in S/4HANA Cloud Public Edition
We explained the SAP best-practice-based role model, focusing on:- Job-based roles
- Master roles free of SoD risks
- Derived roles for assigning organizational values
We also addressed the absence of composite roles and how to adapt the role design accordingly.
- Management of catalogs, applications, and authorizations
We analyzed how to identify the applications required by users, properly organize catalogs, manage dependencies, and deactivate applications within roles. - Segregation of Duties (SoD) risk control
We demonstrated how to minimize risks by applying the principle of least privilege and using the S/4HANA Cloud Public Edition risk matrix available in SAP Cloud Identity Access Governance (IAG). - Security model maintenance and upgrades
We explained the impact of SAP’s biannual releases and the need to review and adapt roles in response to changes in catalogs, applications, dependencies, and authorization restrictions. - Integration with SAP tools
We reviewed the integration of S/4HANA Cloud Public Edition with SAP BTP, SAP IAS, SAP IPS, and SAP IAG, highlighting the benefits of centralized identity and access management.
Key takeaways
The webinar highlighted that effective role and risk management in S/4HANA Cloud Public Edition requires a structured approach supported by SAP best practices and dedicated access governance tools. A well-designed role model not only reduces SoD risks but also simplifies maintenance, enhances user experience, and prepares the system for future upgrades.
Interested in learning more?
If you are interested in the topics covered or would like to access the webinar recording, get in touch with us by clicking here ¡We will be happy to provide further information and answer any questions!